Domain name spoofing vulnerability in Apple Safari before version 6.0

Domain name spoofing vulnerability in Apple Safari before version 6.0

CVE-2012-3693 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

Incomplete blacklist vulnerability in WebKit in Apple Safari before 6.0 allows remote attackers to spoof domain names in URLs, and possibly conduct phishing attacks, by leveraging the availability of IDN support and Unicode fonts to construct unspecified homoglyphs.

Learn more about our Web App Pen Testing.